Login Sign Up

CVE-2026-3723

7.3 HIGH
SQL Injection

📋 TL;DR

This SQL injection vulnerability in Simple Flight Ticket Booking System 1.0 allows attackers to manipulate database queries through the flightno parameter in /Admindelete.php. Remote attackers can potentially access, modify, or delete database contents. All deployments of version 1.0 are affected.

💻 Affected Systems

Products:
  • code-projects Simple Flight Ticket Booking System
Versions: 1.0
Operating Systems: Any OS running PHP
Default Config Vulnerable: ⚠️ Yes
Notes: All installations of version 1.0 are vulnerable by default. Requires PHP environment with database backend.

📦 What is this software?

Simple Flight Ticket Booking System by Carmelo

View all CVEs affecting Simple Flight Ticket Booking System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data theft, data destruction, and potential remote code execution via database functions.

🟠

Likely Case

Unauthorized data access, modification of flight booking records, and potential privilege escalation.

🟢

If Mitigated

Limited impact with proper input validation and database permissions, potentially only error messages exposed.

🌐 Internet-Facing: HIGH - Attack can be performed remotely without authentication.
🏢 Internal Only: MEDIUM - Internal attackers could exploit if system is network-accessible.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit details are publicly available. SQL injection via flightno parameter is straightforward.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://code-projects.org/

Restart Required: No

Instructions:

No official patch available. Consider upgrading to a newer version if available, or implement workarounds.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Add parameter validation and use prepared statements for the flightno parameter in Admindelete.php

Replace vulnerable SQL queries with prepared statements using PDO or mysqli

Web Application Firewall (WAF)

all

Deploy WAF rules to block SQL injection patterns

Configure WAF to detect and block SQL injection attempts

🧯 If You Can't Patch

  • Restrict access to /Admindelete.php using IP whitelisting or authentication
  • Implement database user with minimal permissions (read-only if possible)

🔍 How to Verify

Check if Vulnerable:

Test /Admindelete.php with SQL injection payloads in flightno parameter (e.g., flightno=1' OR '1'='1)

Check Version:

Check application version in source code or documentation files

Verify Fix Applied:

Test with same payloads and verify no SQL errors or unexpected behavior occurs

📡 Detection & Monitoring

Log Indicators:

  • SQL syntax errors in web server logs
  • Unusual database queries from web application
  • Multiple failed parameter validation attempts

Network Indicators:

  • HTTP requests to /Admindelete.php with SQL keywords in parameters
  • Unusual database traffic patterns

SIEM Query:

web.url:"*/Admindelete.php*" AND (web.param.flightno:"*'*" OR web.param.flightno:"*OR*" OR web.param.flightno:"*UNION*")

📊 Metadata

CVE ID: CVE-2026-3723
CVSS v3 Score: 7.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
Published: March 8, 2026
Last Updated: March 9, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2026-3723, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)